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[NTHE claims: 



1 1. (Currently Amended) A method of providing access to a server inside a 

2 firewall comprising the steps of: 

3 receiving at a first proxy outside the firewall a connection request from a client 

4 that is also o ntside the firewall; 

5 e^^Hinp <.iH nnnne-t^nn r^g ue^t ihrourrh said firewall, pver a control chani^el 

6 previously estgHii^hed bv a se ^nnd proxy inside said firewall; 

7 gaid second proxv authenticating the client; 

8 second prox^establishing a data connection with said first prpxy. throug h 

9 firewall, thror p^ -^-^^ --^^ ^^^^ ^^^^ ^^^^^ ^^ ^^^^^^ ^^'"^^ '^'^^ 

10 second nroxv b cu.cc u u sec o n d p mir y ii i. id o thn fir n^ v n ll u uJ d i o c li « .i t v^nr Hn t ho 

11 a t-ou nd prouy fon m d^ roqueotc fi- o m Uic cliont to the v or Inaidc the fire^vft^ L 

1 2. (Original) The method of claim 1 fiirther comprising the step of receiving a 

2 requested resource at the second proxy fi-om the server inside the firewaU and using the 

3 established connection between the second proxy and the client to forward the requested 

4 resource to the client. 

1 3. (Original) Themethodof claim 2 wherein the resource is a document 

2 containing hyperlinks to other resources. 

1 4. (Original) The method of claim 3 wherein the second proxy translates the 

2 hyperlinks in the document into references directed to and interpreted by the second 

3 proxy. 

1 5. (Original) The method of claim 3 wherein the document is a Web page. 

1 6. (Currently Amended) The method of claim 1 wherein the data.connection uses 

2 a secure communication protocol. 

1 7. (Original) The method of claim 5 wherein the secure commxmication protocol 

2 is SSL. 
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1 8. (Original) The method of claim 1 wherein the client is a browser and the 

2 server is a Web server. 



1 



9. (Original) The method of claim 1 wherem the client is authenticated using a 

2 password mechanism. 

1 10. (Original) The method ofclaim 9 wherein the client is authenticated using a 

2 one-time password mechaixism. 

1 11. (Original) A method ofprQ^dding a dient access to a resource stored behind 

2 a firewall comprising the steps of: 

3 parsing the resource for hyperliidcs to other resources behind the firewall; 

4 rewriting said hyperlinks to point to a proxy enabled to access resources behind 

5 the jRrewall; and 

6 transmitting the resource with the rewritten hyperlinks to the client. 

1 12. (Original) The method of claim 1 1 wherein the resource is a Web page, 

1 13. (Original) The method of claim 1 1 wherein the rewritten hyperlmks also 

2 comprise security information. 

1 14. (New) The method of claim 1 further comprising the step of receiving at said 

2 second proxy, in response to a request for a resource from said second proxy, said 

3 requested resource from the server inside the firewall and using the established 

4 connection between the second proxy and the client to forward the requested resource to 

5 the client. 

1 15. (New) The method of claim 1 further comprising the step of receiving from 

2 said first proxy, at said second proxy, a request for a resource of the server. 

1 16. (New) The method of claim 1 wherein said connection request comprises a 

2 URL, the method further comprising said second proxy executing the steps of 

3 translating said URL to a URL that corresponds to a URL of a server inside said 

4 firewall; and 
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5 establishing a connection with said URL- 

1 17. (New) The method of claim 1 wherein the client is authenticated via said 

2 control channel using a password mechanism. 
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18 (New) The method of claim 1 wherein said control chamiel is maintained by 
sending a command that requests a response, over said control channel, at intervals that 
insure a sUence period of not more than a preselected value. 

19. (New) Thte method ofclaiml wherein said control chamxel is adapted to 



2 carry a limited number of different messages. 



20. (New) The method of claim 1 wherein said control channel is adapted to 



1 

2 carry messages from a set that consists of 

3 a message sent by said second proxy to establish said control channel, 

4 a message sent by said first proxy to request establishment of said data 

5 connection, 

6 a hailing message that expects a reply, and 

7 a. reply message that acknowledges said hailing message. 

1 21. (New) The method of claim 1 said step of establishing said data cormection 

2 is followed by a step of said second proxy sending a message to said first proxy, over said 

3 data connection, to inform said first proxy of the establishment of seiid data connection. 

1 22, (New) The method of claim 1 wherein said control channel is maintained by 

2 periodically one of the proxies sending a command that requests a response from the 

3 other of said proxies. . 
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